PluginScore

Compress, Resize & Lazy Load Images – WPvivid Image Optimization

Optimize, compress and resize images in WordPress in bulk. Lazy load images. Auto resize and optimize images upon upload.

v0.9.25wpvividpluginsUpdated Added 10k+ installs86% rating
compress imageslazy load imagesoptimize imagesreduce image sizeresize images
47
Score
107
Errors
58
Warnings
+0
Change

Category Scores

Security32
Repo97
Performance100
Maintainability22

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

165 findings

Maintainability

106

19 issue groups

I18n

28

2 issue groups

Security

27

4 issue groups

ERRORMaintainabilitymissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;28
Category
Maintainability
Occurrences
28
Severity
error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protectionReference
ERRORI18nText Domain MismatchMismatched text domain. Expected 'wpvivid-imgoptim' but got 'WpAdminStyle'.20
Category
I18n
Occurrences
20
Severity
error

Sample message

Mismatched text domain. Expected 'wpvivid-imgoptim' but got 'WpAdminStyle'.

WordPress.WP.I18n.TextDomainMismatchReference
WARNINGSecurityMissing Unslash$_POST['cdn'] not unslashed before sanitization. Use wp_unslash() or similar17
Category
Security
Occurrences
17
Severity
warning

Sample message

$_POST['cdn'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash
ERRORMaintainabilityfile system operations fopenFile operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().14
Category
Maintainability
Occurrences
14
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fopen().

WordPress.WP.AlternativeFunctions.file_system_operations_fopen
WARNINGMaintainabilityDiscouragedThe use of function ini_set() is discouraged10
Category
Maintainability
Occurrences
10
Severity
warning

Sample message

The use of function ini_set() is discouraged

Squiz.PHP.DiscouragedFunctions.Discouraged
WARNINGMaintainabilityerror log error logerror_log() found. Debug code should not normally be used in production.8
Category
Maintainability
Occurrences
8
Severity
warning

Sample message

error_log() found. Debug code should not normally be used in production.

WordPress.PHP.DevelopmentFunctions.error_log_error_log
ERRORMaintainabilityfile system operations fcloseFile operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().8
Category
Maintainability
Occurrences
8
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fclose().

WordPress.WP.AlternativeFunctions.file_system_operations_fclose
ERRORI18nMissing Arg DomainMissing $domain parameter in function call to __().8
Category
I18n
Occurrences
8
Severity
error

Sample message

Missing $domain parameter in function call to __().

WordPress.WP.I18n.MissingArgDomainReference
ERRORMaintainabilityfile system operations freadFile operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fread().6
Category
Maintainability
Occurrences
6
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fread().

WordPress.WP.AlternativeFunctions.file_system_operations_fread
WARNINGSecurityRecommendedProcessing form data without nonce verification.5
Category
Security
Occurrences
5
Severity
warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended
Show 15 more
ERRORMaintainabilityfile system operations fwrite5
Category
Maintainability
Occurrences
5
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().

WordPress.WP.AlternativeFunctions.file_system_operations_fwrite
ERRORMaintainabilityfile system operations mkdir4
Category
Maintainability
Occurrences
4
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: mkdir().

WordPress.WP.AlternativeFunctions.file_system_operations_mkdir
WARNINGMaintainabilityNon Prefixed Function Found3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "phpseclib_resolve_include_path".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound
WARNINGSecurityInput Not Sanitized3
Category
Security
Occurrences
3
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_REQUEST['_wp_http_referer']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized
ERRORMaintainabilityrename rename3
Category
Maintainability
Occurrences
3
Severity
error

Sample message

rename() is discouraged. Use WP_Filesystem::move() to rename a file.

WordPress.WP.AlternativeFunctions.rename_rename
WARNINGMaintainabilitytrademarked term3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

The plugin name includes a restricted term. Your chosen plugin name - "Compress, Resize & Lazy Load Images - WPvivid Image Optimization" - contains the restricted term "wp" which cannot be used at all in your plugin name.

trademarked_term
ERRORMaintainabilityFound2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

The use of function create_function() is forbidden

Generic.PHP.ForbiddenFunctions.Found
ERRORMaintainabilityPlugin Directory Write2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

Plugin folders are deleted when upgraded. Do not save data to the plugin folder using fwrite(). Detected usage of constant WP_CONTENT_DIR. Use wp_upload_dir() to get the uploads directory path or save to the database instead.

PluginCheck.CodeAnalysis.WriteFile.PluginDirectoryWrite
WARNINGMaintainabilityprevent path disclosure phpinfo2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

phpinfo() can lead to full path disclosure.

WordPress.PHP.DevelopmentFunctions.prevent_path_disclosure_phpinfo
WARNINGSecurityMissing2
Category
Security
Occurrences
2
Severity
warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing
ERRORMaintainabilityfile system operations rmdir2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: rmdir().

WordPress.WP.AlternativeFunctions.file_system_operations_rmdir
ERRORMaintainabilityrand mt rand2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

mt_rand() is discouraged. Use the far less predictable wp_rand() instead.

WordPress.WP.AlternativeFunctions.rand_mt_rand
ERRORMaintainabilitystrip tags strip tags2
Category
Maintainability
Occurrences
2
Severity
error

Sample message

strip_tags() is discouraged. Use the more comprehensive wp_strip_all_tags() instead.

WordPress.WP.AlternativeFunctions.strip_tags_strip_tags
WARNINGMaintainabilityDirect Query1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Use of a direct database call is discouraged.

WordPress.DB.DirectDatabaseQuery.DirectQuery
WARNINGMaintainabilityNo Caching1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WordPress.DB.DirectDatabaseQuery.NoCaching

Score History

First score snapshot

v0.9.25

47

Latest

Findings
165
Errors
107
Warnings
58
Check
2.0.0

Related Plugins

QODE Optimizer

20k+ active installs

74
Kraken.io Image Optimizer – Compress, Convert to WebP & AVIF, Resize & Bulk Optimize

9k+ active installs

67
Image Optimization For SEO

3k+ active installs

56
Flying Images: Optimize and Lazy Load Images for Faster Page Speed

3k+ active installs

40
LazyLoad Plugin – Lazy Load Images, Videos, and Iframes

100k+ active installs

40
TinyPNG – JPEG, PNG & WebP image compression

100k+ active installs

38